Acegi running fine. Howto add roles, ...
I'm learning Spring (and I'm really enjoying it so far), but the really hard part for me is getting security running as I want to have it with acegi.
So far, after a lot of struggles and torned out hairs, I got Acegi authentication and authorization by roles running fine. Before I want to start learning how to implement ACLs/Permissions with Acegi, I want to let administrators add/change/remove Roles from the database and the security Context.
But I don't have a clue how to implement that and how to get it running. After reading the documentation, api and lots of threads here, I tried it as it's done in the contacts example with NamedEntityObjectIdentity.
Even if I tried it the same way as it's done in the example app, I struggled with an uncatched exception (TargetInvocationException), so I gave up for now.
I'm having a UserBean which extends a PersonBean and EntityBean. This is all mapped via Hibernate to a database. For the frontend, I'm using Spring MVC. I really don't regret any minute spent for learning spring. So far it's really nice.
Completely independent from my Beans, I implemented Acegi using the JdbcDaoImpl. I think this is not the best/correct way is it?!
Should I somehow couple Acegi with my Beans? Where's the best place to add roles and how can I tie the form input to a specific user?
I think using other Beans and HIbernate to fill Acegi tables independent from Acegi is the wrong way?!
I had a hard time getting Acegi to work as it does now, but now I'm getting stuck. :(
If you want to check my code:
Thanks a lot for any feedback and help!
And to all the Acegi/Spring contributors, thanks a lot for your nice work! I hope I'll get someday to the point, where I can contribute to the spring/acegi community.
Siteminder-Acegi Integration problem
Could some one please help me to figure out a way to implement the particular scenario
In our application Siteminder intercepts the request and authenticates it.I need to update a specific role back to the ACEGI based upon the siteminder header value so that, the user will have only role based access to the application resources.
Any help is greatly appreciated
thanks in advance